Method of authentication anonymous users while reducing potential for “middleman” fraud
First Claim
Patent Images
1. A method for a provider of software to authenticate users of the software, comprising the steps of:
- constructing a puzzle in response to information received from a user, the puzzle including the information, wherein the constructing step comprises the steps of deriving a value from the information to produce a derived value, exponentiating the derived value to produce an exponentiated value, and combining the exponentiated value with a portion of the derived value;
sending the puzzle to the user;
returning a solution to the puzzle to the provider;
storing the information and a random number;
performing a hash function on the information and the random number to generate a fist hash result; and
encrypting the first hash result;
wherein the deriving step comprises the steps of partitioning the encrypted hash result into first and second components, performing a hash function on a concatenation of the first component and the random number to generate a second hash result, appending a plurality of zero values to the second component to produce a lengthened second component, performing an exclusive-OR operation between the lengthened second component and the second hash result to generate an exclusive-OR result, and concatenating the first component and the exclusive-OR result to produce the derived value.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of authenticating anonymous users while reducing potential for “middleman” fraud includes the step of constructing a puzzle in response to information received from a software user. The puzzle includes the received information. The puzzle is sent to the user by a software provider. The user solves the puzzle and returns the solution to the provider. The puzzle includes a portion of a value derived from an encrypted “cookie” and an exponentiation of the derived value. The cookie includes information about the user.
45 Citations
3 Claims
-
1. A method for a provider of software to authenticate users of the software, comprising the steps of:
-
constructing a puzzle in response to information received from a user, the puzzle including the information, wherein the constructing step comprises the steps of deriving a value from the information to produce a derived value, exponentiating the derived value to produce an exponentiated value, and combining the exponentiated value with a portion of the derived value;
sending the puzzle to the user;
returning a solution to the puzzle to the provider;
storing the information and a random number;
performing a hash function on the information and the random number to generate a fist hash result; and
encrypting the first hash result;
wherein the deriving step comprises the steps of partitioning the encrypted hash result into first and second components, performing a hash function on a concatenation of the first component and the random number to generate a second hash result, appending a plurality of zero values to the second component to produce a lengthened second component, performing an exclusive-OR operation between the lengthened second component and the second hash result to generate an exclusive-OR result, and concatenating the first component and the exclusive-OR result to produce the derived value.
-
-
2. An apparatus for enabling a provider of software to authenticate users of the software, comprising:
-
means for constructing a puzzle in response to information received from a user, the puzzle including the information;
wherein the means for constructing a puzzle further comprises means for deriving a value from the information to produce a derived value, means for exponentiating the derived value to produce an exponentiated value, and means for combining the exponentiated value with a portion of the derived value;
means for sending the puzzle to the user; and
means for returning a solution to the puzzle to the provider;
means for storing the information and a random number;
means for performing a hash function on the information and the random number to generate a first hash result; and
means for encrypting the first hash result;
wherein the means for deriving means for partitioning the encrypted hash result into first and second components, performing a hash function on a concatenation of the first component and the random number to generate a second hash result, appending a plurality of zero values to the second component to produce a lengthened second component, performing an exclusive-OR operation between the lengthened second component and the second hash result to generate an exclusive-OR result, and concatenating the first component and the exclusive-OR result to produce the derived value.
-
-
3. An apparatus for enabling a provider of software to authenticate users of the software, comprising:
-
a processor; and
a processor-readable storage medium accessible by the processor and containing a set of instructions executable by the processor to construct a puzzle in response to information received from a user, the puzzle including the information, and sending the puzzle to the user;
wherein the puzzle is constructed by deriving a value from the information to produce a derived value, exponentiating the derived value to produce an exponentiated value, and combining the exponentiated value with a portion of the derived value; and
wherein the set of instructions is further executable by the processor to store the information and a random number, perform a hash function on the information and the random number to generate a first hash result, and encrypt the first hash result, wherein the derived value is derived by partitioning the encrypted hash result into first and second components, performing a hash function on a concatenation of the first component and the random number to generate a second hash result, appending a plurality of zero values to the second component to produce a lengthened second component, performing an exclusive-OR operation between the lengthened second component and the second hash result to generate an exclusive-OR result, and concatenating the first component and the exclusive-OR result to produce the derived value.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeQualcomm, Inc.
-
Original AssigneeQualcomm, Inc.
-
InventorsRose, Gregory G., Hawkes, Philip M.
-
Primary Examiner(s)Caldwell, Andrew
-
Assistant Examiner(s)CALLAHAN, PAUL E
-
Application NumberUS09/468,557Time in Patent Office2,093 DaysField of Search713/181, 713/188, 713/152, 713/153, 713/168, 380/30, 380/251, 380/201, 380/262, 705/51, 705/67, 705/57US Class Current713/181CPC Class CodesG06F 21/31 User authenticationG06Q 20/3674 involving authenticationH04L 63/0407 wherein the identity of one...H04L 63/0442 wherein the sending and rec...H04L 63/08 for authentication of entit...H04L 63/1466 Active attacks involving in...Y04S 40/20 Information technology spec...
